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Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) OR THIRTY (30) DAYS, 
WHICHEVER IS LONGER, FROM THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If NO period for reply is specified above, the maximum statutory period will apply and v^rill expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)^ Responsive to connmunication(s) filed on 18 July 2005 . 
2a)l3 This action is FINAL. 2b)n This action is non-finaL 

3) 0 Since this application is in condition for allowance except for fomnal nnatters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) [3 Claim(s) 9-25 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) 0 Claim(s) is/are allowed. 

6) ^ Claim(s) 9-25 is/are rejected. 
?)□ Claim(s) is/are objected to. 

8) n Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) n The specification is objected to by the Examiner. 

10) 0 The drawing(s) filed on is/are: a)n accepted or b)n objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1.85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

11) 0 The oath or declaration is objected to by the Examiner. Note the attached Office Action orfomn PTO-152. 

Priority under 35 U.S.C. § 1 1 9 

1 2) n Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 1 9(a)-(d) or (f). 
a)n All b)n Some * c)\3 None of: 

Certified copies of the priority documents have been received. 

2. n Certified copies of the priority documents have been received in Application No. . 

3. n Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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1) K Notice of References Cited (PTO-892) 4) □ Inten/iew Summary (PTO-413) 
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3) □ Information Disclosure Statement(s) (PTO-1449 or PTO/SB/08) 5) □ Notice of Informal Patent Application (PTO-1 52) 
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U.S. Patent and Tradennark Office 

PTOL-326 (Rev. 7-05) Office Action Summary Part of Paper No./Mail Date 2 
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DETAILED ACTION 

1 . The amendment filed 23 March 2005 has been noted and made of record. 

2. Claims 1-8 have been cancelled as per Applicant's request. 

3. Newly added claims 9-25 have been presented for examination. 

Response to Arguments 

4. Applicant's arguments with respect to claims 9-25 have been considered but are moot in 
view of the new ground(s) of rejection. 

5 . See further rejections that follow. 

Claim Rejections - 35 USC §103 

6. The text of those sections of Title 35, U.S. Code not included in this action can be found 
in a prior Office action. 

7. Claims 9-12, 14-18, 20-23, and 25 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over U.S. Patent 6,438,549 to Aldred et al., hereinafter Aldred, in view of U.S. 
Patent 6,708, 1 70 to Byrne et al, hereinafter Byrne. 

8. As per claims 9, 16, and 21, Aldred discloses a method for authenticating users to 
individual network devices that are distributed among a plurality of locations, comprising the 
following steps: 

storing a directory structure at one of said locations, said directory structure comprising a 
root node, a first level of nodes below said root node that are associated with respective 
organizations to which said network devices are assigned, and at least one ftirther level of nodes 
below said first level that identify users who are authorized to access the network devices 
assigned to the organization associated with a parent first-level node and authentication 
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information for said users (Figures 1 [block 21], 2, 7, column 3, line 64 to column 4, line 20, 
column 6, lines 51-60); 

in response to a request by a user for access to one of said network devices, determining 
which organization to which said one device is assigned and whether said user is identified on a 
node below the first-level node associated with the determined organization (column 1, line 66 to 
column 2, line 21, column 4, line 65 to column 5, line 16, column 7, line 65 to column 8, line 4); 
and 

authenticating said user to said device if the user is so identified (column 7, line 65 to 
column 8, line 4). 

9. Aldred does not teach replicating said directory structure among said plurality of 
locations. 

10. Byrne discloses repUcating said directory structure among said plurality of locations 
(column 2, lines 32-37). 

1 1 . Both Aldred and Byrne are related in controlling access to various resources using a 
access control lists with the lightweight directory access protocol. 

12. It would have been obvious to one of ordinary skill in the art at the time the invention 
was made to rephcate the directory structure among a plurality of locations, since Byrne 
discloses at column 2, lines 32-37 that such a modification allows each machine to define the 
group and entry information for each domain. 
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13. Regarding claims 10, 17, and 22, Aldred teaches wherein said directory structure further 
includes nodes below said first level that identify resources of an associated organization to 
which authenticated users are allowed access (column 4, Une 65 to column 5, line 16). 

14. Regarding claim 1 1, Byrne teaches wherein said determining step is performed with 
reference to a replicated copy of said directory structure at the location containing said one 
device (column 2, lines 32-37, i.e. authentication based on repUcation). 

15. Regarding claim 12, Byrne discloses wherein said network devices comprise servers, and 
said locations are data centers (column 2, lines 23-43, i.e. distributed computing environment, 
multiple servers). 

16. Regarding claims 14, 18, and 23, Aldred teaches wherein the same user identification and 
authentication information is contained at a plurality of said further level nodes that are 
respectively associated with different ones of said first-level nodes (column 4, line 65 to column 
5, line 16). 

17. Regarding claim 15, Aldred and Byrne do not teach wherein said rephcating step is 
carried out automatically without user input. 

18. It would have been obvious to one of ordinary skill in the art at the time the invention 
was made to carry out the replicating step automatically, since it has been held that merely 
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automating a step requires routine skill in the art. See MPEP § 2144.04, see also In re Venner, 
262 F.2d 91, 95, 120 USPQ 192, 194 (CCPA 1958). 

19. Regarding claims 20 and 25, Aldred teaches wherein at least some of network resources 
are servers that each include an authentication module that is responsive to a request for access to 
determine the organization to which its corresponding server is assigned and restrict directory 
searches to the further-level nodes below the first-level node associated with the determined 
organization (column 1, line 66 to column 2, line 21, column 4, line 65 to column 5, line 16, 
column 7, line 65 to column 8, line 4). 

20. Claims 13, 19, and 24 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Aldred in view of Byrne as applied above, and further in view of U.S. Patent No. 6,446,204 to 
Pang et al., hereinafter Pang. 

21 . Regarding claims 13, 19, and 24, Aldred and Byrne do not wherein at least some of said 
locations contain at least two repUcated copies of said directory structure, and fiirther including 
the steps of distributing access requests among said replicated copies by means of a load 
balancer. 

22. Pang teaches wherein at least some of said locations contain at least two replicated copies 
of said directory structure, and further including the steps of distributing access requests among 
said replicated copies by means of a load balancer (figure 8, column 23, lines 50-64). 

23. Aldred, Byrne and Pang are all related in the field of distributed authentication. 
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24. It would have been obvious to one of ordinary skill in the art at the time the invention 
was made to distribute the access requests by means of a load balancer, since Pang states at 
column 23, lines 50-64 that such a modification would balance the load on the authentication 
hosts, thereby preventing bottlenecks. 

Conclusion 

25. The prior art made of record and not relied upon is considered pertinent to applicant's 
disclosure. 

26. The following patents are cited to further show the state of the art with respect to 
distributed authentication, such as: 

United States Patent No. 6,470,332 to Weschler, which is cited to show searching for, 
and retrieving, profile attributes based on other target profile attributes and associated profiles. 

United States Patent No. 6,681,330 to Bradford et al., which is cited to show a 
heterogeneous computer network system with unobtrusive cross-platform user access. 

United States Patent No. 6,539,021 to Kennelly et al., which is cited to show role based 
management independent of the hardware topology. 

United States Patent No. 6,625,615 to Shi et al., which is cited to show data processing 
for multi-level directory searches. 

27. Applicant's amendment necessitated the new ground(s) of rejection presented in this 
Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP § 706.07(a). 
Applicant is reminded of the extension of time policy as set forth in 37 CFR 1. 136(a). 

28. A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
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MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 
CFR 1 .136(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the date of this 
final action. 

29. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Christian La Forgia whose telephone number is (571) 272-3792. 
The examiner can normally be reached on Monday thru Thursday 7-5. 

30. If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on (571) 272-3795. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

3 1 . Information regarding the status of an appUcation may be obtained fi^om the Patent 
Application Information Retrieval (PAIR) system. Status information for pubUshed apphcations 
may be obtained fi-om either Private PAIR or PubUc PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EEC) at 866-217-9197 (toll-fi*ee). 
Christian LaForgia i /\ * 
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